Privacy Policy

At IRONMAN.com, we are committed to safeguarding your privacy online. We want to assure our users that IRONMAN.com will not willfully disclose any specific individual information about you to any third party unless you give us your express permission to do so.

WORLD TRIATHLON CORPORATION ONLINE PRIVACY AND COOKIE POLICY

Last Updated: May 31, 2018

We appreciate your interest in our sport events, races and competitions (“Events”), our event website (ironman.com) and our mobile apps and social networking pages, profiles, and feeds that post or display a link to this privacy policy), (collectively, our “Services”). Privacy protection is very important to us and we are committed to protecting and respecting your privacy. This privacy policy sets out information about how we collect, store, process, transfer and use data that identifies you or makes you identifiable as a natural person (hereinafter "personal data").

1. Who is data controller of your personal data?

We, that is World Triathlon Corporation, 3407 W. Dr. Martin Luther King Jr. Blvd Suite 100, 33607 Tampa, Florida (“WTC” or “we”) are the data controller. We are responsible for, and control, the processing of your personal data.

If you wish to contact us, you can find our contact details at the end of this Privacy Policy.

The registration for our Events will, in some cases, be provided by third-party event registration services, such as active.com ("Registration Partners"). Our Registration Partners process the payment for our Events independently, WTC does not have any access to information concerning the payment. For this reason, this Privacy Policy does not apply to the payment processing by our Registration Partners, and we encourage you to check the privacy policies of our Registration Partners to learn about their privacy practices. As far as our Registration Partners collect other personal data necessary for the registration, they act on our behalf and this Privacy Policy applies to these processing activities.

2. What personal data do we collect?

In the context of rendering our Services, we may collect personal data about you. This personal data regularly includes the following:

Information we collect during your participation of our Event. Information on your performance, such as your starting number, your place in the rankings, other information in the context of your ranking and any other information you provide us during the Event.

Information we collect from social networks. When you interact with our Services through various social media, such as when you login through Facebook or when you follow WTC or share WTC content on Facebook, Twitter, Instagram or other sites, we may receive information from those social networks including your profile information, picture, user ID associated with your social media account, friends list, and any other information you permit the social network to share with third parties. The data we receive is dependent upon your privacy settings.

3. How do we collect your personal data?

Personal data is collected in many ways and may include:

Personal data you provide to us: Most of the personal data we receive comes to us voluntarily from our users in the course of using our Services, such as when visiting our website, registering and participating in our Events or communicating with us.

You are free to choose which information you want to provide to us or whether you want to provide us with personal data at all. However, some information, such as information requested in the registration procedure and information collected during the Event may be necessary for the performance of our contractual obligations in the context of your Event participation. Without providing this data, you will not be able to enter into a contract with us, such as registering for our Events.

personal data collected via technology: As you use our websites, we may collect information through the use of cookies. Please see Section 9 for more information.

personal data we receive from others: We may receive personal data about users from third parties such as our Registration Partners, social media sites, Marketing Partners (as defined below) and law enforcement agencies.

4. Why and on which legal basis do we collect and use your personal data?

The reasons for using your personal data may differ depending on the purpose of the collection. Regularly we use your data for the following purposes and on the following legal grounds:

We use your personal data in order to perform our contractual services or for the preparation of entering into a contract with you. If you register for our Events or if you contact us to register for our Events, we use your data to conduct our Events and make your participation in our Events possible. Information we use includes: information we need to contact you or otherwise communicate with you, e.g. to send you administrative information, registration and Event information to process your Event registration and participation; information for payments processing; information to respond to your comments and questions and provide customer service; if you are a registered user, information to manage and create your account.

We use your personal data if justified by our legitimate interests. The usage of your personal data may also be necessary for our own business interests. For example, we may use some of your personal data to evaluate and review our Events and overall business performance, create financial statements, understand you and your preferences to enhance and individualize your experience and enjoyment of our Services, improve our Services, and identify potential cyber security threats. If necessary, we may also use your personal data to pursue or defend ourselves against legal claims. We may use your personal data to provide you with individualized marketing. For instance, we deliver targeted advertising messages to you on our websites and elsewhere on the Internet. If you have participated in our Events before, we may use your email address to provide you with information on similar events.

We use your personal data after obtaining your consent. In some cases, we may ask you to grant us separate consent to use your personal data. You are free to deny your consent and the denial will have no negative consequences for you. You are free to withdraw your consent at any time with effect for the future. If you have granted us consent to use your personal data, we will use it only for the purposes specified in the consent form.

This also includes our marketing campaigns. If you sign up to our email newsletter or when providing us with your email address allow us to use this email address for email marketing, we will use your personal data in our email marketing campaigns. You may unsubscribe from our email newsletter at any time [unsubscribe from this list]. You may also contact us via email, phone or mail at the addresses provided at the end of this document to request that we remove you from our email list.

We use your personal data to comply with legal obligations. We are obligated to retain certain data because of legal requirements, for example, tax or commercial laws or we may be required by law enforcement to provide personal data on request.

We will only use your personal data for the purposes for which we have collected them. We will not use your personal data for other purposes. We do not use your personal data for automated individual decision-making.

5. With whom do we share your personal data?

As required in accordance with how we use it, we will share your personal data with the following third parties:

Service providers and advisors: Third party vendors and other service providers that perform services for us and on our behalf, which may include marketing campaign services, providing mailing or email services, tax and accounting services, services related to the registration and organization of our Events, payment processing, data enhancement services, fraud prevention, web hosting, or providing analytic services. These third parties include: Gulfspring Timing, Mika-Timing, Google Analytics. Any such service providers will by appropriate data processing agreements be bound to only process the data on our behalf and under our instructions.

Marketing Partners. Provided you have granted your consent, we may disclose your personal data to our third-party sponsors and marketing partners (collectively, "Marketing Partners") to allow them to market their products or services to you, and measure the effectiveness of their marketing campaigns, promotions, endorsements and sponsorships or for other marketing purposes.

Event Photographers. If you participate in our Events and have given us consent to do so, we will disclose your bib number, name, email address and phone number to the Event photographer, who may contact you with photos from the attended Event.

Purchasers and third parties in connection with a business transaction: Personal data may be disclosed to third parties in connection with a transaction, such as a merger, sale of our assets or shares, reorganization, financing, change of control or acquisition of all or a portion of our business, or in the event of a bankruptcy or similar proceedings.

Law enforcement, regulators and other parties for legal reasons: Third parties as required by law or subpoena or if we reasonably believe that such action is necessary to (a) comply with the law and the reasonable requests of law enforcement; (b) to enforce our legal claims or to protect the security or integrity of our Services; and/or (c) to exercise or protect the rights, property, or personal safety of WTC, our athletes, visitors, or others.

The public: The official rankings and information justifying the ranking will be disclosed to visitors of our event and on our website.

6. How long do we keep your data?

We will store personal data for as long as necessary to fulfil the purposes for which we collect the data, in accordance with our legal obligations and legitimate business interests. Afterwards, or at the end of the statutory retention times, the personal information will be deleted. For example, national commercial or financial codes may require to retain certain information for up to 10 years.

7. How do we protect your information?

We implement a variety of security measures to maintain the safety of your personal data when you use our Service. In the event that any information under our control is compromised as a result of a breach of security, we will take reasonable steps to investigate the situation and, where appropriate, notify those individuals whose personal data may have been compromised and take other steps, in accordance with any applicable laws and regulations.

8. How do we safeguard your personal data when there is an international transfer?

In certain cases, we transfer personal data to countries outside the European Union or the European Economic Area. For example, where we disclose personal data to our affiliate World Triathlon Corporation, personal data will be transferred and processed in the USA. This may mean that your personal data will be stored in a jurisdiction that offers a level of protection that may, in certain instances, be less protective of your personal data than the jurisdiction you are typically a resident in.

For this reason, we have entered into guarantees to ensure appropriate safeguards. If we transfer information from the European Union to third parties outside the European Union and to countries not subject to schemes which are considered as providing an adequate data protection standard, we will enter into contracts which are based on the EU Standard Contractual Clauses with these parties.

If you wish to inquire further about the safeguards we use, please contact us using the details set out at the end of this Privacy Policy.

We will take reasonable steps to ensure that your personal data is treated securely and in accordance with applicable law and this Privacy Policy.

9. Cookies and Similar Technologies

The Services uses cookies, flash objects, web beacons, file information and similar technologies to distinguish you from other users of the Services. This helps us to provide you with a good experience when you browse the Services and also allows us to improve the Services.

Cookies are pieces of code that allow for personalization of the Services experience by saving your data such as user ID and other preferences. A cookie is a small data file that we transfer to your device's hard disk (such as your computer or smartphone) for record-keeping purposes.

We use the following types of cookies:

Strictly necessary cookies. These are cookies that are required for the essential operation of the Services such as to authenticate users and prevent fraudulent use.

Analytical/performance cookies. These allow us to recognize and count the number of visitors and to see how visitors move around the Services when they are using it. This helps us to improve the way the Services works, for example, by ensuring that users are finding what they are looking for easily.

Functionality cookies. These are used to recognize you when you return to the Services. This enables us to personalize our content for you, greet you by name and remember your preferences (for example, your choice of language or region).

Targeting cookies. These cookies record your visit to our website, the pages you have visited and the links you have followed. We will use this information to make our website and the advertising displayed on it, and the marketing messages we send to you more relevant to your interests. We may also share this data with third parties who provide a service to us for this purpose.

Third party cookies. Please be aware that advertisers and other third parties may use their own cookies tags when you click on an advertisement or link on our website. These third parties are responsible for setting out their own cookie and privacy policies.

How to manage cookies? The cookies we use are designed to help you get the most from the Services but if you do not wish to receive cookies, most browsers allow you to change your cookie settings. Please note that if you choose to refuse cookies you may not be able to use the full functionality of the Services. These settings will typically be found in the "options" or "preferences" menu of your browser. In order to understand these settings, the following links may be helpful, otherwise you should use the "Help" option in your browser for more details.

We also use clear gifs in HTML-based emails sent to our Customers to track which emails are opened and which links are clicked by recipients. The information allows for more accurate reporting and improvement of our Service. You can set your e-mail options to prevent the automatic downloading of images that may contain these technologies that would allow us to know whether you have accessed our e-mail and performed certain functions with it.

We want you to understand your rights and choices regarding how we may use your personal data. Depending on how you use your data, these rights and choices may include the following:

Individual Rights. You have specific rights under applicable privacy law in respect to your personal data that we hold, including a right of access and erasure and a right to prevent certain processing activities.

If you are a resident in the European Union, you have the following rights in respect to your personal data that we hold:

Right of access. The right to obtain access to your personal data.

Right to rectification. The right to obtain rectification of your personal data without undue delay where that personal data is inaccurate or incomplete.

Right to erasure. The right to obtain the erasure of your personal data without undue delay in certain circumstances, such as where the personal data is no longer necessary in relation to the purposes for which it was collected or processed.

Right to restriction. The right to obtain restriction of the processing undertaken by us on your personal data in certain circumstances, such as, where the accuracy of the personal data is contested by you, for a period of time enabling us to verify the accuracy of that personal data.

Right to portability. The right to portability allows you to move, copy or transfer personal data easily from one organization to another.

Right to object. You have a right to object to any processing based on our legitimate interests where there are grounds relating to your particular situation. You can object to marketing activities for any reason whatsoever.

If you wish to exercise one of these rights, please contact us using the contact details below. For cookies or e-mail marketing, we provide the following easily usable option:

Cookies Settings and Preferences. You may disable cookies and other tracking technologies through the settings in your browser.

E-Mail Settings and Preferences. If you no longer want to receive marketing e-mails from us, you may choose to unsubscribe at any time [unsubscribe from this list].